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CLAIM AMENDMENTS 



1 1 . (Currently Amended) A method for managing addition and deletion of network nodes 

2 from and to a secure multicast or broadcast group of network nodes in a 

3 communications network without a single point of failure, wherein each of the 

4 network nodes is associated with one of a plurality of r e phcat e d group controllers^ 

5 wherein each group controller of the plurality of group controllers is a replica of a 

6 particular group controller, and wherein the network nodes and the plurality of group 

7 controllers are logically organized in a binary tree that represents the network nodes 

8 and the plurality of group controllers, in which leaf nodes of the binary tree represent 

9 network nodes that are joining or leaving the secure multicast or broadcast group, 

10 intermediate nodes represent other network nodes, and root nodes represent the 

1 1 plurality of group controllers, the method comprising the steps of: 

1 2 joining on e of th e a first group controll e rs controller to the plurality of r e phcat e d 

13 group controllers in a local network; 

14 establishing , by on e of th e group controll e rs, a secure communication channel between 

1 5 on e of the first group controll e rs controller and anoth e r a second group 

16 controller of the plurality of group controllers using a key exchange protocol; 

1 7 receiving a request to add or delete a network node of the secure multicast or 

1 8 broadcast group from a load balancer that is coupled to the plurality of group 

19 controllers; 

20 creating and storing a new group session key for each network node represented in 

21 each branch of the binary tree that is affected by adding or deleting the 

22 network node from the secure multicast or broadcast group; and 

23 distributing a group session key from on e of the a third group controll e rs controller of 

24 the plurality of group controllers to the network nodes. 
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1 2. (Currently Amended) A method as recited in Claim 1 , wherein distributing a group 

2 session key further comprises: 

3 receiving a token value at the third group controller to designate the third group 

4 controller as having permission to selectively generate the group session key 

5 and to generate node keys associated with the intermediate nodes and the leaf 

6 nodes; and 

7 creating and storing the group session key only when the third group controller has the 

8 token value. 

1 3. (Currently Amended) A method as recited in Claim 1, wherein distributing a group 

2 session key further comprises: 

3 determining whether the secure multicast or broadcast group has a network node that 

4 is leaving the secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected by the leaving node; 

6 updating keys associated with the affected intermediate nodes; 

7 generating a new group session key; and 

8 sending the new group session key to the leaf nodes. 

1 4. (Currently Amended) A method as recited in Claim 3, wherein updating keys 

2 comprises: 

3 generating a new key of a parent node of the leaving node; and 

4 encrypting the new key of the parent node with a key of a network node adjacent to 

5 the parent node. 

1 5. (Currently Amended) A method as recited in Claim 1, wherein distributing a group 

2 session key further comprises: 

3 receiving a request message fi'om one of the plurality of network nodes to join the 

4 secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected by the joining node; 

6 updating keys associated with the affected intermediate nodes; 

7 generating a new group session key and a private key of the joining node; and 

8 sending a message comprising the new group session key, the private key, and the 

9 updated keys of affected intermediate nodes to the joining node. 
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1 6. (Original) A method as recited in Claim 5, wherein updating keys comprises 

2 performing a one way hash function on the keys associated with the affected 

3 intermediate nodes. 

1 7. (Original) A method as recited in Claim 1 , wherein receiving a request comprises 

2 receiving the request at a load balancer having a single virtual address that represents 

3 the plurality of group controllers. 

1 8. (Currently Amended) A method as recited in Claim 7, further comprising the step of 

2 load balancing network traffic that is directed from a plurality of the network nodes to 

3 the plurality of group controllers. 

1 9. (Currently Amended) A method as recited in Claim 1, wherein establishing a secure 

2 communication channel comprises exchanging a public key of the first group 

3 controller with all other group controllers in the plurality of r e plicat e d group 

4 controllers based upon optimized broadcast Diffie-Hellman protocol. 

1 10. (Currently Amended) A method as recited in Claim 5, wherein establishing a secure 

2 communication channel comprises: 

3 receiving a public key value that is broadcast by the joining node; 

4 sending a collective public key value from the network nodes to the joining node; 

5 computing a shared secret key: and 

6 creating and storing a group shared secret key by exchanging private key values. 

1 11. (Currently Amended) A computer-readable medium comprising one or more 

2 sequences of instructions for managing addition and deletion of network nodes from 

3 and to a secure multicast or broadcast group of network nodes in a communications 

4 network without a single point of failure, wherein each of the network nodes is 

5 associated with one of a plurality of r e plicat e d group controllers , wherein each group 

6 controller of the plurality of group controllers is a replica of a particular group 

7 controller, and wherein the network nodes and the plurality of group controllers are 

8 logically organized in a binary tree that represents the network nodes and the plurality 

9 of group controllers, in which leaf nodes of the binary tree represent network nodes 
10 that are joining or leaving the secure multicast or broadcast group, intermediate nodes 
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1 1 represent other network nodes, and root nodes represent the plurality of group 

12 controllers, and which instructions, when executed by one or more processors, cause 

13 the processors to carry out the steps of: 

14 joining on e of th e a first group controll e rs controller to the plurality of r e pUcat e d 

1 5 group controllers in a local network; 

1 6 establishing , by on e of th e group controll e rs, a secure communication channel between 

17 ene-ef-the first group controll e rs controller and anoth e r a second group 

1 8 controller of the plurality of group controllers using a public key exchange 

19 protocol; 

20 receiving a request to add or delete a network node of the secure multicast or 

21 broadcast group fi'om a load balancer that is coupled to the plurality of group 

22 controllers; 

23 creating and storing a new group session key for each network node represented in 

24 each branch of the binary tree that is affected by adding or deleting the 

25 network node from the secure multicast or broadcast group; and 

26 distributing a group session key fi*om on e of th e a third group controll e rs controller of 

27 the plurality of group controllers to the network nodes. 

1 12. (Currently Amended) A computer-readable medium as recited in Claim 1 1, wherein 

2 distributing a group session key fiirther comprises: 

3 receiving a token value at the third group controller to designate the third group 

4 controller as having permission to selectively generate the group session key 

5 and to generate node keys associated with the intermediate nodes and the leaf 

6 nodes; and 

7 creating and storing the group session key only when the third group controller has the 

8 token value. 

1 13. (Currently Amended) A computer-readable medium as recited in Claim 1 1, wherein 

2 distributing a group session key fiirther comprises: 

3 determining whether the secure multicast or broadcast group has a network node that 

4 is leaving the secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected by the leaving node; 

6 updating keys associated with the affected intermediate nodes; 
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7 generating a new group session key; and 

8 sending the new group session key to the leaf nodes. 

1 14. (Currently Amended) A computer-readable medium as recited in Claim 3, wherein 

2 updating keys comprises: 

3 generating a new key of a parent node of the leaving node; and 

4 encrypting the new key of the parent node with a key of a network node adjacent to 

5 the parent node. 

1 15. (Currently Amended) A computer-readable medium as recited in Claim 11, wherein 

2 distributing a group session key further comprises: 

3 receiving a request message from one of the plurality of network nodes to join the 

4 secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected by the joining node; 

6 updating keys associated with the affected intermediate nodes; 

7 generating a new group session key and a private key of the joining node; and 

8 sending a message comprising the new group session key, the private key, and the 

9 updated keys of affected intermediate nodes to the joining liode. 

1 16. (Original) A computer-readable medium as recited in Claim 15, wherein updating 

2 keys comprises performing a one way hash function on the keys associated with the 

3 affected intermediate nodes. 

1 17. (Original) A computer-readable medium as recited in Claim 1 1 , wherein receiving a 

2 request comprises receiving the request at a load balancer having a single virtual 

3 address that represents the plurality of group controllers. 

1 18. (Currently Amended) A computer-readable medium as recited in Claim 17, further 

2 comprising instructions which, when executed bv the one or more processors, cause 

3 the processors to carry out the step of load balancing network traffic that is directed 

4 from a plurality of the network nodes to the plurality of group controllers. 
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1 19. (Currently Amended) A computer-readable medium as recited in Claim 11, wherein 

2 establishing a secure communication channel comprises exchanging a public key of 

3 the first group controller with all other group controllers in the plurality of r e plicat e d 

4 group controllers based upon Diffie-Hellman protocol. 

1 20. (Currently Amended) A computer-readable medium as recited in Claim 15, wherein 

2 establishing a secure communication channel comprises: 

3 receiving a public key value that is broadcast by the joining node; 

4 sending a collective public key value from the network nodes to the joining node; 

5 computing a shared secret key; and 

6 creating and storing a group shared secret key by exchanging private key values. 

1 21. (Currently Amended) A method of managing addition and deletion of network nodes 

2 from and to a secure multicast or broadcast group of network nodes in a 

3 communications network, wherein each of the network nodes is associated with a first 

4 group controller comprising information that is replicated in a plurality of group 

5 controllers, and wherein the network nodes and the plurality of g roup controllers are 

6 logically organized in a binary tree that represents the network nodes and the plurality 

7 of g roup controllers, in which leaf nodes of the binary tree represent network nodes 

8 that are joining or leaving the secure multicast or broadcast group, intermediate nodes 

9 represent other network nodes, and root nodes represent the plurality of g roup 

10 controllers, the method comprising the steps of: 

1 1 joining the first group controller in a local network in which the plurality of group 

12 controllers are coupled; 

13 establishing a secure channel between the first group controller and the plurality of 

14 group controllers through secure key exchange; 

1 5 receiving a request to add or delete a network node from a load balancer that controls 

16 distribution of requests to the plurality of g roup controllers; 

1 7 generating a new group session key for each network node represented in each branch 

18 of the binary tree that is affected by adding or deleting the network node from 

1 9 the secure multicast or broadcast group; and 

20 distributing the group session key from the first group controller to the other group 

21 controllers of the plurality of group controllers over the secure channel. 

9 

Docket No. 50325-0076(1417) 



Application of Srivastava, Set. No. 09/408,420, Filed 9/29/99 
Reply to Office Action 



1 22. (Currently Amended) A method as recited in Claim 21, further comprising the steps 

2 step of generating the group session key only when the first group controller is 

3 designated as a master group controller that is authorized to join network nodes and 

4 generate group session keys. 

1 23. (Currently Amended) A method as recited in Claim 22, further comprising the steps 

2 step of successively designating different enes group controllers of the plurality of 

3 group controllers as the master group controller in real time. 

1 24. (Currently Amended) A method for creating a secure multicast or broadcast group, 

2 the method comprising the steps of: 

3 establishing a secure communication channel among a plurality of group controllers 

4 via a pubHc key exchange protocol; 

5 load balancing traffic emanating fi-om a plurality of network nodes to the plurality of 

6 group controllers; and 

7 distributing a group session key by one of the group controllers based upon a logical 

8 arrangement of the network nodes in a binary tree structure, the binary tree 

9 structure having a root node, intermediate nodes, and leaf nodes, wherein the 

10 plurality of network nodes correspond to leaf nodes of the binary tree structure 

1 1 and the plurality of g roup controllers correspond to the root node. 

1 25. (Original) The method as recited in Claim 24, wherein the step of distributing further 

2 comprises: 

3 circulating a token among the plurality of group controllers to designate the one group 

4 controller as having permission to selectively generate the group session key 

5 and keys associated with the intermediate nodes and the leaf nodes; and 

6 selectively generating the group session key based upon the circulating step. 

1 26. (Currently Amended) The method as recited in Claim 24, wherein the step of 

2 distributing further comprises: 

3 detecting whether the secure multicast or broadcast group has a network node that is 

4 leaving the secure multicast or broadcast group; 
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5 determining which of the intermediate nodes are affected in response to the detecting 

6 step; 

7 updating keys associated with the affected intermediate nodes; 

8 generating a new group session key; and 

9 sending the new group session key to the leaf nodes. 

1 27. (Currently Amended) The method as recited in Claim 26, wherein the step of 

2 updating comprises: 

3 generating a new key of a parent node of the leaving node; and 

4 encrypting the new key of the parent node with a key of a network node adjacent to 

5 the parent node. 

1 28. (Currently Amended) The method as recited in Claim 24, wherein the step of 

2 distributing further comprises: 

3 receiving a request message from one of the plurality of network nodes to join the 

4 secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected in response to the receiving 

6 step; 

7 updating keys associated with the affected intermediate nodes; 

8 generating a new group session key and a private key of the joining node; and 

9 sending a message comprising the new group session key, the private key, and the 
1 0 updated keys of affected intermediate nodes to the joining node. 

1 29. (Original) The method as recited in Claim 28, wherein the step of updating comprises 

2 performing a one way hash function on the keys associated with the affected 

3 intermediate nodes. 

1 30. (Original) The method as recited in Claim 24, further comprising addressing the 

2 plurality of group controllers using a single virtual address. 
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1 31. (Currently Amended) A computer system that can manage addition and deletion of 

2 network nodes from and to a secure multicast or broadcast group o f network nodes in 

3 a communications network without a single point of failure, wherein each of the 

4 network nodes is associated with one of a plurality of r e plicat e d group controllers^ 

5 wherein each group controller of the plurality of group controllers is a replica of a 

6 particular group controller, and wherein the network nodes and the plurality of group 

7 controllers are logically organized in a binary tree that represents the network nodes 

8 and the plurality of group controllers, in which leaf nodes of the binary tree represent 

9 network nodes that are joining or leaving the secure multicast or broadcast group, 

10 intermediate nodes represent other network nodes, and root nodes represent the 

1 1 plurality of group controllers, the computer system comprising: 

12 a load balancer coupled to the plurality of group controllers for interfacing inbound 

1 3 service requests to a selected one group controller of the plurality of group 

14 controllers; 

15 a bus coupled to the load balancer for transferring data; 

16 one or more processors coupled to the bus for selectively generating a group session 

1 7 key imder control of program instructions; 

18 a memory coupled to the one or more processors via the bus; 

19 one or more sequences of program instructions stored in the memory which, when 

20 executed by the one or more processors cause the one or more processors to 

21 perform the steps of: 

22 joining on e of th e a first group controll e rs controller to the plurality of r e pUcat e d 

23 group controllers in a local network; 

24 establishing , by on e of th e group controll e rs, a secure communication channel between 

25 on e of the first group controll e rs controller and anoth e r a second group 

26 controller of the plurality of group controllers using a key exchange protocol; 

27 receiving a request to add or delete a network node of the secure multicast or 

28 broadcast group from [[a]] the load balancer that is coupled to the plurality of 

29 group controllers; 
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30 creating and storing a new group session key for each network node represented in 

3 1 each branch of the binary tree that is affected by adding or deleting the 

32 network node from the secure multicast or broadcast group; 

33 distributing [[a]] tiie group session key from on e of th e a third group controll e rs 

34 controller of the plurality of group controllers to the network nodes. 

1 32. (New) A computer system as recited in Claim 3 1 , wherein distributing a group 

2 session key fiirther comprises: 

3 receiving a token value at the third group controller to designate the third group 

4 controller as having permission to selectively generate the group session key 

5 and to generate node keys associated with the intermediate nodes and the leaf 

6 nodes; and 

7 creating and storing the group session key only when the third group controller has the 

8 token value. 

1 33. (New) A computer system as recited in Claim 31, wherein distributing a group 

2 session key ftirther comprises: 

3 determining whether the secure multicast or broadcast group has a network node that 

4 is leaving the secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected by the leaving node; 

6 updating keys associated with the affected intermediate nodes; 

7 generating a new group session key; and 

8 sending the new group session key to the leaf nodes. 

1 34. (New) A computer system as recited in Claim 33, wherein updating keys comprises: 

2 generating a new key of a parent node of the leaving node; and 

3 encrypting the new key of the parent node with a key of a network node adjacent to 

4 the parent node. 
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1 35. (New) A computer system as recited in Claim 31, wherein distributing a group 

2 session key further comprises: 

3 receiving a request message from one of the network nodes to join the secure muhicast 

4 or broadcast group; 

5 determining which of the intermediate nodes are affected by the joining node; 

6 updating keys associated with the affected intermediate nodes; 

7 generating a new group session key and a private key of the joining node; and 

8 sending a message comprising the new group session key, the private key, and the 

9 updated keys of affected intermediate nodes to the joining node. 

1 36. (New) A computer system as recited in Claim 35, wherein updating keys comprises 

2 performing a one way hash function on the keys associated with the affected 

3 intermediate nodes. 

1 37. (New) A computer system as recited in Claim 3 1 , wherein receiving a request 

2 comprises receiving the request at a load balancer having a single virtual address that 

3 represents the plurality of group controllers. 

1 38. (New) A computer system as recited in Claim 37, further comprising one or more 

2 sequences of program instructions stored in the memory which, when executed by the 

3 one or more processors cause the one or more processors to perform the step of load 

4 balancing network traffic that is directed from a plurality of the network nodes to the 

5 plurality of group controllers. 

1 39. (New) A computer system as recited in Claim 3 1 , wherein establishing a secure 

2 communication channel comprises exchanging a public key of the first group 

3 controller with all other group controllers in the plurality of group controllers based 

4 upon optimized broadcast Diffie-Hellman protocol. 

1 40. (New) A computer system as recited in Claim 35, wherein establishing a secure 

2 communication channel comprises: 

3 receiving a public key value that is broadcast by the joining node; 

4 sending a collective public key value from the network nodes to the joining node; 

5 computing a shared secret key: and 
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6 creating and storing a group shared secret key by exchanging private key values. 

1 41 . (New) An apparatus for managing addition and deletion of network nodes from and to 

2 a secure multicast or broadcast group of network nodes in a communications network 

3 without a single point of failure, wherein each of the network nodes is associated with 

4 one of a plurality of group controllers, wherein each group controller of the plurality 

5 of group controllers is a replica of a particular group controller, and wherein the 

6 network nodes and the plurality of group controllers are logically organized in a binary 

7 tree that represents the network nodes and the plurality of group controllers, in which 

8 leaf nodes of the binary tree represent network nodes that are joining or leaving the 

9 secure multicast or broadcast group, intermediate nodes represent other network 

10 nodes, and root nodes represent the plurality of group controllers, the apparatus 

1 1 comprising: 

12 means for joining a first group controller to the plurality of group controllers in a local 

13 network; 

14 means for establishing a secure communication channel between the first group 

15 controller and a second group controller of the plurality of group controllers 

1 6 using a key exchange protocol; 

17 means for receiving a request to add or delete a network node of the secure multicast 

1 8 or broadcast group from a load balancer that is coupled to the plurality of 

19 group controllers; 

20 means for creating and storing a new group session key for each network node 

21 represented in each branch of the binary tree that is affected by adding or 

22 deleting the network node from the secure multicast or broadcast group; and 

23 means for distributing a group session key from a third group controller of the 

24 plurality of group controllers to the network nodes. 

1 42. (New) An apparatus as recited in Claim 41 , wherein the means for distributing a 

2 group session key ftirther comprises: 

3 means for receiving a token value at the third group controller to designate the third 

4 group controller as having permission to selectively generate the group session 

5 key and to generate node keys associated with the intermediate nodes and the 

6 leaf nodes; and 
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7 means for creating and storing the group session key only when the third group 

8 controller has the token value. 

1 43. (New) An apparatus as recited in Claim 41, wherein the means for distributing a 

2 group session key further comprises: 

3 means for determining whether the secure multicast or broadcast group has a network 

4 node that is leaving the secure multicast or broadcast group; 

5 means for determining which of the intermediate nodes are affected by the leaving 

6 node; 

7 means for updating keys associated with the affected intermediate nodes; 

8 means for generating a new group session key; and 

9 means for sending the new group session key to the leaf nodes. 

1 44. (New) An apparatus as recited in Claim 43, wherein the means for updating keys 

2 comprises: 

3 means for generating a new key of a parent node of the leaving node; and 

4 means for encrypting the new key of the parent node with a key of a network node 

5 adjacent to the parent node. 

1 45. (New) An apparatus as recited in Claim 41, wherein the means for distributing a 

2 group session key further comprises: 

3 means for receiving a request message from one of the network nodes to join the 

4 secure multicast or broadcast group; 

5 means for determining which of the intermediate nodes are affected by the joining 

6 node; 

7 means for updating keys associated with the affected intermediate nodes; 

8 means for generating a new group session key and a private key of the joining node; 

9 and 

10 means for sending a message comprising the new group session key, the private key, 

1 1 and the updated keys of affected intermediate nodes to the joining node. 

1 46. (New) An apparatus as recited in Claim 45, wherein the means for updating keys 

2 comprises means for performing a one way hash function on the keys associated with 

3 the affected intermediate nodes. 
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1 47. (New) An apparatus as recited in Claim 41, wherein the means for receiving a request 

2 comprises means for receiving the request at a load balancer having a single virtual 

3 address that represents the plurality of group controllers. 

1 48. (New) An apparatus as recited in Claim 47, further comprising means for load 

2 balancing network traffic that is directed from a plurality of the network nodes to the 

3 plurality of group controllers. 

1 49. (New) An apparatus as recited in Claim 41, wherein the means for establishing a 

2 secure communication channel comprises means for exchanging a public key of the 

3 first group controller with all other group controllers in the plurality of group 

4 controllers based upon optimized broadcast DifFie-Hellman protocol. 

1 50. (New) An apparatus as recited in Claim 45, wherein the means for establishing a 

2 secure communication channel comprises: 

3 means for receiving a public key value that is broadcast by the joining node; 

4 means for sending a collective public key value from the network nodes to the joining 

5 node; 

6 means for computing a shared secret key; and 

7 means for creating and storing a group shared secret key by exchanging private key 

8 values. 
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1 51. (New) A computer-readable medium comprising one or more sequences of 

2 instructions for managing addition and deletion of network nodes from and to a secure 

3 multicast or broadcast group of network nodes in a communications network, wherein 

4 each of the network nodes is associated with a first group controller comprising 

5 information that is replicated in a plurality of group controllers, and wherein the 

6 network nodes and the plurality of group controllers are logically organized in a binary 

7 tree that represents the network nodes and the plurality of group controllers, in which 

8 leaf nodes of the binary tree represent network nodes that are joining or leaving the 

9 secure multicast or broadcast group, intermediate nodes represent other network 

10 nodes, and root nodes represent the plurality of group controllers, and which 

1 1 instructions, when executed by one or more processors, cause the processors to carry 

12 out the steps of: 

13 joining the first group controller in a local network in which the plurality of group 

14 controllers are coupled; 

1 5 establishing a secure channel between the first group controller and the plurality of 

1 6 group controllers through secure key exchange; 

1 7 receiving a request to add or delete a network node from a load balancer that controls 

1 8 distribution of requests to the plurality of group controllers; 

1 9 generating a new group session key for each network node represented in each branch 

20 of the binary tree that is affected by adding or deleting the network node from 

2 1 the secure multicast or broadcast group; and 

22 distributing the group session key from the first group controller to the other group 

23 controllers of the plurality of group controllers over the secure channel. 

1 52. (New) A computer-readable medium as recited in Claim 51, further comprising 

2 instructions to carry out the step of generating the group session key only when the 

3 first group controller is designated as a master group controller that is authorized to 

4 join network nodes and generate group session keys. 
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1 53. (New) A computer-readable medium as recited in Claim 52, further comprising 

2 instructions for carrying out the step of successively designating different group 

3 controllers of the plurality of group controllers as the master group controller in real 

4 time. 

1 54. (New) A computer-readable medium comprising one or more sequences of 

2 instructions for creating a secure multicast or broadcast group, and which instructions, 

3 when executed by one or more processors, cause the processors to carry out the steps 

4 of: 

5 establishing a secure communication channel among a plurality of group controllers 

6 via a public key exchange protocol; 

7 load balancing traffic emanating from a plurality of network nodes to the plurality of 

8 group controllers; and 

9 distributing a group session key by one of the group controllers based upon a logical 

10 arrangement of the network nodes in a binary tree structure, the binary tree 

1 1 structure having a root node, intermediate nodes, and leaf nodes, wherein the 

12 plurality of network nodes correspond to leaf nodes of the binary tree structure 

1 3 and the plurality of group controllers correspond to the root node. 

1 55. (New) The computer-readable medium as recited in Claim 54, wherein the step of 

2 distributing further comprises: 

3 circulating a token among the plurality of group controllers to designate the one group 

4 controller as having permission to selectively generate the group session key 

5 and keys associated with the intermediate nodes and the leaf nodes; and 

6 selectively generating the group session key based upon the circulating step. 

1 56. (New) The computer-readable medium as recited in Claim 54, wherein the step of 

2 distributing further comprises: 

3 detecting whether the secure multicast or broadcast group has a network node that is 

4 leaving the secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected in response to the detecting 

6 step; 

7 updating keys associated with the affected intermediate nodes; 
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8 generating a new group session key; and 

9 sending the new group session key to the leaf nodes. 

1 57. (New) The computer-readable medium as recited in Claim 56, wherein the step of 

2 updating comprises: 

3 generating a new key of a parent node of the leaving node; and 

4 encrypting the new key of the parent node with a key of a network node adjacent to 

5 the parent node. 

1 58. (New) The computer-readable medium as recited in Claim 54, wherein the step of 

2 distributing further comprises: 

3 receiving a request message from one of the plurality of network nodes to join the 

4 secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected in response to the receiving 

6 step; 

7 updating keys associated with the affected intermediate nodes; 

8 generating a new group session key and a private key of the joining node; and 

9 sending a message comprising the new group session key, the private key, and the 
10 updated keys of affected intermediate nodes to the joining node. 

1 59. (New) The computer-readable medium as recited in Claim 58, wherein the step of 

2 updating comprises performing a one way hash function on the keys associated with 

3 the affected intermediate nodes. 

1 60. (New) The computer-readable medium as recited in Claim 54, further comprising 

2 instructions for carrying out the step of addressing the plurality of group controllers 

3 using a single virtual address. 
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1 61 . (New) A computer system that can manage addition and deletion of network nodes 

2 from and to a secure multicast or broadcast group of network nodes in a 

3 communications network, wherein each of the network nodes is associated with a first 

4 group controller comprising information that is replicated in a plurality of group 

5 controllers, and wherein the network nodes and the plurality of group controllers are 

6 logically organized in a binary tree that represents the network nodes and the plurality 

7 of group controllers, in which leaf nodes of the binary tree represent network nodes 

8 that are joining or leaving the secure multicast or broadcast group, intermediate nodes 

9 represent other network nodes, and root nodes represent the plurality of group 

10 controllers, the computer system comprising: 

11 a load balancer coupled to the plurality of group controllers for interfacing inbound 

12 service requests to a selected group controller of the plurality of group 

13 controllers; 

14 a bus coupled to the load balancer for transferring data; 

15 one or more processors coupled to the bus for selectively generating a group session 

16 key under control of program instructions; 

17 a memory coupled to the one or more processors via the bus; 

1 8 one or more sequences of program instructions stored in the memory which, when 

19 executed by the one or more processors cause the one or more processors to 

20 perform the steps of: 

21 joining the first group controller in a local network in which the plurality of group 

22 controllers are coupled; 

23 establishing a secure channel between the first group controller and the plurality of 

24 group controllers through secure key exchange; 

25 receiving a request to add or delete a network node from the load balancer that 

26 controls distribution of requests to the plurality of group controllers; 

27 generating a new group session key for each network node represented in each branch 

28 of the binary tree that is affected by adding or deleting the network node from 

29 the secure multicast or broadcast group; and 

30 distributing the group session key from the first group controller to the other group 

3 1 controllers of the plurality of group controllers over the secure chaimel. 
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1 62. (New) A computer system as recited in Claim 61 , further comprising instructions to 

2 perform the step of generating the group session key only when the first group 

3 controller is designated as a master group controller that is authorized to join network 

4 nodes and generate group session keys. 

1 63. (New) A computer system as recited in Claim 62, further comprising instructions to 

2 perform the step of successively designating different group controllers of the plurality 

3 of group controllers as the master group controller in real time. 

1 64. (New) A computer system that can create a secure multicast or broadcast group, the 

2 computer system comprising: 

3 a load balancer coupled to the plurality of group controllers for interfacing inbound 

4 service requests to a selected group controller of the plurality of group 

5 controllers; 

6 a bus coupled to the load balancer for transferring data; 

7 one or more processors coupled to the bus for selectively generating a group session 

8 key under control of program instructions; 

9 a memory coupled to the one or more processors via the bus; 

10 one or more sequences of program instructions stored in the memory which, when 

1 1 executed by the one or more processors cause the one or more processors to 

1 2 perform the steps of: 

1 3 establishing a secure communication channel among a plurality of group controllers 

14 via a public key exchange protocol; 

1 5 load balancing traffic emanating from a plurality of network nodes to the plurality of 

16 group controllers; and 

1 7 distributing a group session key by one of the group controllers based upon a logical 

1 8 arrangement of the network nodes in a binary tree structure, the binary tree 

19 structure having a root node, intermediate nodes, and leaf nodes, wherein the 

20 plurality of network nodes correspond to leaf nodes of the binary tree structure 

21 and the plurality of group controllers correspond to the root node. 
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1 65. (New) The computer system as recited in Claim 64, wherein the step of distributing 

2 further comprises: 

3 circulating a token among the plurality of group controllers to designate the one group 

4 controller as having permission to selectively generate the group session key 

5 and keys associated with the intermediate nodes and the leaf nodes; and 

6 selectively generating the group session key based upon the circulating step. 

1 66. (New) The computer system as recited in Claim 64, wherein the step of distributing 

2 further comprises: 

3 detecting whether the secure multicast or broadcast group has a network node that is 

4 leaving the secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected in response to the detecting 

6 step; 

7 updating keys associated with the affected intermediate nodes; 

8 generating a new group session key; and 

9 sending the new group session key to the leaf nodes. 

1 67. (New) The computer system as recited in Claim 66, wherein the step of updating 

2 comprises: 

3 generating a new key of a parent node of the leaving node; and 

4 encrypting the new key of the parent node with a key of a network node adjacent to 

5 the parent node. 

1 68. (New) The computer system as recited in Claim 64, wherein the step of distributing 

2 further comprises: 

3 receiving a request message from one of the plurality of network nodes to join the 

4 secure multicast or broadcast group; 

5 determining which of the intermediate nodes are affected in response to the receiving 

6 step; 

7 updating keys associated with the affected intermediate nodes; 

8 generating a new group session key and a private key of the joining node; and 

9 sending a message comprising the new group session key, the private key, and the 
1 0 updated keys of affected intermediate nodes to the joining node. 
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1 69. (New) The computer system as recited in Claim 68, wherein the step of updating 

2 comprises performing a one way hash function on the keys associated with the 

3 affected intermediate nodes. 

1 70. (New) The computer system as recited in Claim 64, further comprising instructions to 

2 perform the step of addressing the plurality of group controllers using a single virtual 

3 address. 

1 71. (New) An apparatus for managing addition and deletion of network nodes from and to 

2 a secure multicast or broadcast group of network nodes in a communications network, 

3 wherein each of the network nodes is associated with a first group controller 

4 comprising information that is replicated in a plurality of group controllers, and 

5 wherein the network nodes and the plurality of group controllers are logically 

6 organized in a binary tree that represents the network nodes and the plurality of group 

7 controllers, in which leaf nodes of the binary tree represent network nodes that are 

8 joining or leaving the secure multicast or broadcast group, intermediate nodes 

9 represent other network nodes, and root nodes represent the plurality of group 

10 controllers, the apparatus comprising: 

1 1 means for joining the first group controller in a local network in which the plurality of 

12 group controllers are coupled; 

13 means for establishing a secure channel between the first group controller and the 

14 plurality of group controllers through secure key exchange; 

15 means for receiving a request to add or delete a network node from a load balancer 

16 that controls distribution of requests to the plurality of group controllers; 

17 means for generating a new group session key for each network node represented in 

1 8 each branch of the binary tree that is affected by adding or deleting the 

19 network node from the secure multicast or broadcast group; and 

20 means for distributing the group session key from the first group controller to the other 

21 group controllers of the plurality of group controllers over the secure channel. 
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1 72. (New) An apparatus as recited in Claim 71, further comprising means for generating 

2 the group session key only when the first group controller is designated as a master 

3 group controller that is authorized to join network nodes and generate group session 

4 keys. 

1 73. (New) An apparatus as recited in Claim 72, further comprising means for 

2 successively designating different group controllers of the plurality of group 

3 controllers as the master group controller in real time. 

1 74. (New) An apparatus for creating a secure multicast or broadcast group, the apparatus 

2 comprising: 

3 means for establishing a secure communication channel among a plurality of group 

4 controllers via a public key exchange protocol; 

5 means for load balancing traffic emanating from a plurality of network nodes to the 

6 plurality of group controllers; and 

7 means for distributing a group session key by one of the group controllers based upon 

8 a logical arrangement of the network nodes in a binary tree structure, the 

9 binary tree structure having a root node, intermediate nodes, and leaf nodes, 

10 wherein the plurality of network nodes correspond to leaf nodes of the binary 

1 1 tree structure and the plurality of group controllers correspond to the root node. 

1 75. (New) The apparatus as recited in Claim 74, wherein the means for distributing 

2 further comprises: 

3 means for circulating a token among the plurahty of group controllers to designate the 

4 one group controller as having permission to selectively generate the group 

5 session key and keys associated with the intermediate nodes and the leaf 

6 nodes; and 

7 means for selectively generating the group session key based upon the circulating step. 

1 76. (New) The apparatus as recited in Claim 74, wherein the means for distributing 

2 further comprises: 

3 means for detecting whether the secure multicast or broadcast group has a network 

4 node that is leaving the secure multicast or broadcast group; 
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5 means for determining which of the intermediate nodes are affected in response to the 

6 detecting means; 

7 means for updating keys associated with the affected intermediate nodes; 

8 means for generating a new group session key; and 

9 means for sending the new group session key to the leaf nodes. 

1 77. (New) The apparatus as recited in Claim 76, wherein the means for updating 

2 comprises: 

3 means for generating a new key of a parent node of the leaving node; and 

4 means for encrypting the new key of the parent node with a key of a network node 

5 adjacent to the parent node. 

1 78. (New) The apparatus as recited in Claim 74, wherein the means for distributing 

2 further comprises: 

3 means for receiving a request message from one of the plurahty of network nodes to 

4 join the secure multicast or broadcast group; 

5 means for determining which of the intermediate nodes are affected in response to the 

6 receiving means; 

7 means for updating keys associated with the affected intermediate nodes; 

8 means for generating a new group session key and a private key of the joining node; 

9 and 

10 means for sending a message comprising the new group session key, the private key, 

1 1 and the updated keys of affected intermediate nodes to the joining node. 

1 79. (New) The apparatus as recited in Claim 78, wherein the means for updating 

2 comprises means for performing a one way hash function on the keys associated with 

3 the affected intermediate nodes. 

1 80. (New) The apparatus as recited in Claim 74, further comprising means for addressing 

2 the plurality of group controllers using a single virtual address. 
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